Internet Explorer X.509 Certificate Common Name Encoding Multiple Security Bypass Vulnerabilities

Internet Explorer X.509 Certificate Common Name Encoding Multiple Security Bypass Vulnerabilities

References:

IOActiveâ??Comprehensive Computer Security Services (IOACTIVE)
Microsoft Internet Explorer Homepage (Microsoft)
MS09-056: Addressing the X.509 CryptoAPI ASN.1 security vulnerabilities (Microsoft)
PKI Layer Cake: New Collision Attacks Against The Global X.509 CA Infrastructure (Dan Kaminsky, Len Sassaman, and Meredith Patterson)
Article ID: 974571 MS09-056: Vulnerabilities in CryptoAPI could allow spoofing (Microsoft)
Microsoft Security Bulletin MS09-056 (Microsoft)

Privacy Statement
Copyright 2010, SecurityFocus